Home
Payment Card Industry (PCI) Add-on User Guide
BigFix Compliance PCI Add-on is a new chargeable component that provides security configuration checklists that are based the Payment Card Industry Data Security Standard (PCI DSS). These compliance checks are designed to help ensure continuous compliance at every endpoint in your organization.
Understanding the results in BigFix Compliance Analytics
Use BigFix Compliance Analytics (formerly known as Security and Compliance Analytics or SCA) to navigate and explore security configuration check results.
Viewing reports from BigFix Compliance Analytics
BigFix Compliance Analytics displays reports that contain the compliance status of your deployment. Each PCI DSS checklist and its checks are exported periodically into Compliance Analytics.

Payment Card Industry (PCI) Add-on User Guide
BigFix Compliance PCI Add-on is a new chargeable component that provides security configuration checklists that are based the Payment Card Industry Data Security Standard (PCI DSS). These compliance checks are designed to help ensure continuous compliance at every endpoint in your organization.
- Overview
  HCL BigFix Compliance PCI Add-on is a new chargeable component that provides security configuration checklists that are based on the Payment Card Industry Data Security Standard (PCI DSS). These compliance checks are designed to help ensure continuous compliance at every endpoint in your organization.
- Setup
  Complete configuration steps to access the PCI DSS checklists and checks and ensure accurate relevance evaluation on the endpoints.
- Using checks and checklists
  The check Fixlets in Configuration Management checklists assess an endpoint against a configuration standard. Many check Fixlets have a corresponding analysis, sometimes referred to as measured values, that report the value of the element that the check Fixlet evaluates.
- Understanding the results in BigFix Compliance Analytics
  Use BigFix Compliance Analytics (formerly known as Security and Compliance Analytics or SCA) to navigate and explore security configuration check results.
  - Starting BigFix Compliance Analytics
    Use any of the supported web browsers to open the web-based application.
  - Importing data to BigFix Compliance Analytics
    Depending on your configuration, the Extract Transform and Load (ETL) process that computes the compliance status of each check and checklist could take a long time. To ensure that you are viewing the latest reports, verify that the imports are configured to run automatically and that a recent import has completed successfully.
  - Viewing reports from BigFix Compliance Analytics
    BigFix Compliance Analytics displays reports that contain the compliance status of your deployment. Each PCI DSS checklist and its checks are exported periodically into Compliance Analytics.
  - Viewing PCI DSS compliance results
    This section shows how you can view the results of PCI DSS compliance at a checklist, checks, and check results levels.
  - Creating exceptions
    You can file for the endpoint to be excluded from the PCI DSS checks if some endpoints require compliance to older policies or standards.
- Resources
  You can find more information about Security Configuration Management and PCI DSS in the following resources.

Viewing reports from BigFix Compliance Analytics

BigFix Compliance Analytics displays reports that contain the compliance status of your deployment. Each PCI DSS checklist and its checks are exported periodically into Compliance Analytics.

You can view the compliance status of your deployment from any of the four report types:

Overview Reports: If no PCI policies are enabled, the page will automatically default to the SCM overview.; In BigFix Compliance Analytics version 2.0 and later, the home page defaults to the Overview report that provides a graphical representation of the Policy History, Computers by Policy Quartile, and Check Results History for all PCI DSS Policies if the steps discussed at Setting up the PCI DSS Policy Reports for BigFix Compliance Analytics V2.0 and later are completed.
List Reports: The List report shows a list of checklists, checks, computers, computers groups, or vulnerabilities in the deployment. It provides the attributes of each type and the overall, historical aggregate compliance results of all types on all visible computers.; Each row entry in the report represents a list type, such as checklists, checks, computers, computers groups, or vulnerabilities.
Check Results Reports: The Check Results report shows the list of all checks and computers, attributes of each computer and check, and the historical compliance result for each check on each computer.; Each row entry in the report represents a single check on a single computer.
Exceptions Reports: The Exception report shows the list and status of exceptions in the given scope applied to each computer visible to the logged-in user, together with attributes of each check, each computer, and each exception.; Each row entry in the report represents a single check on a single computer as specified by an exception.

Each of these reports contain graphical and tabular views of different aspects of your deployment compliance status. For more information about the available report types, see Viewing deployment compliance status reports.